VB2017 preview: Hacktivism and website defacement: motivations, capabilities and potential threats

Posted by   Martijn Grooten on   Sep 13, 2017

In March this year, following a political row between the Netherlands and Turkey, a large number of Dutch websites were defaced to display messages in support of the Turkish government. It was another example in a growing trend of socio-political motivated attackers defacing websites, or performing other kinds of hacks, to spread their message.

For security researchers, the first response in such a case might be to focus on the often poor security of the affected websites. But what about the attackers themselves: what motivates them? What tools do they use? How do these change over time?

Researchers Marco Romagna and Niek Jan van den Hout from The Hague University of Applied Sciences have written a paper – which they will present at VB2017 in Madrid – in which they provide a qualitative analysis of the motives and intentions of hacktivists, and a qualitative analysis of their modus operandi. It is one of those papers that will likely be used as a reference for many years to come, especially since there is no sign of the hacktivism threat going away any time soon.

romagna_vandenhout_hacktivism_fallaga.png

To hear Marco and Niek Jan present their paper, and to hear more than 50 other speakers discuss the latest threats and how to defend against them, make sure you register for VB2017 (4-6 October, Madrid) now!

twitter.png
fb.png
linkedin.png
googleplus.png
reddit.png

 

Latest posts:

We are more ready for IPv6 email than we may think

Though IPv6 is gradually replacing IPv4 on the Internet's network layer, email is lagging behind, the difficulty in blocking spam sent over IPv6 cited as a reason not to move. But would we really have such a hard time blocking spam sent over IPv6?

Subtle change could see a reduction in installation of malicious Chrome extensions

Google has made a subtle change to its Chrome browser, banning the inline installation of new extensions, thus making it harder for malware authors to trick users into unwittingly installing malicious extensions.

Paper: EternalBlue: a prominent threat actor of 2017–2018

We publish a paper by researchers from Quick Heal Security Labs in India, who study the EternalBlue and DoublePulsar exploits in full detail.

'North Korea' a hot subject among VB2018 talks

Several VB2018 papers deal explicitly or implicitly with threats that have been attributed to North Korean actors.

Expired domain led to SpamCannibal's blacklist eating the whole world

The domain of the little-used SpamCannibal DNS blacklist had expired, resulting in it effectively listing every single IP address.

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.